Narsail
Reputation: 797
Having difficulty to get SSH with a Yubikey working with macOS monterey
I'm following the FIDO U2F instructions on https://developers.yubico.com/SSH/ on macOS Monterey with openSSH 8.6 and run into the following issue:
~ ssh-keygen -t ecdsa-sk -f ~/.ssh/id_ecdsa_sk
Generating public/private ecdsa-sk key pair.
You may need to touch your authenticator to authorize key generation.
Key enrollment failed: unknown or unsupported key type
Anyone know what I'm missing here?
Upvotes: 21
Views: 17105
Answers (1)
Mattia Righetti
Reputation: 1360
Use Homebrew's OpenSSH
$ brew install openssh
Once installed, you have to override the one in your PATH by putting the openssh folder at the beginning of your PATH in your rc file like this
$ export PATH=$(brew --prefix openssh)/bin:$PATH
Once you've done that and you've sourced your rc file you should be able to generate your key
Tested on macOS Monterey and OpenSSH_8.8p1, OpenSSL 1.1.1l
Upvotes: 25
Related Questions
- Why can't I connect to github with my ssh key on yubikey
- How to SSH login to Google Cloud Shell using an existing private key on a YubiKey security key
- ssh yubikey: "Unable to load resident keys: device not found"
- How can I use `ddev auth ssh` with a YubiKey?
- "Enter PIN for Authenticator" for command ssh-add -K
- "Confirm user presence for key" message not displayed when using Yubikey for SSH connection
- How do I get my Yubikey to work with SSH in Windows 10?
- Connect Yubikey key to GitHub
- Ansible with Yubikey configured for SSH
- AddKeysToAgent yes ssh config not working on Mac